Sync changes to SLFO-1.2 branch

libgcrypt 1.11.2 (forwarded request 1298440 from AndreasStieger)

OBS-URL: https://build.opensuse.org/request/show/1299109
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/libgcrypt?expand=0&rev=110

libgcrypt-CVE-2024-2236.patch

@@ -1798,12 +1798,7 @@ Index: libgcrypt-1.11.1/tests/pkcs1v2.c
  
            err = gcry_sexp_build (&ciph, NULL,
                                   "(enc-val (flags pkcs1)"
-@@ -480,19 +526,23 @@ check_v15crypt (void)
-           if (err)
-             {
-               show_sexp ("ciph:\n", ciph);
--              fail ("gcry_pk_decrypt failed: %s\n", gpg_strerror (err));
-+              fail ("gcry_pk_decrypt w RSA failed: %s\n", gpg_strerror (err));
+@@ -484,15 +530,19 @@ check_v15crypt (void)
              }
            else
              {

libgcrypt.changes

@@ -1,9 +1,9 @@
 -------------------------------------------------------------------
-Thu Jun  5 13:23:03 UTC 2025 - Angel Yankov <angel.yankov@suse.com>
+Mon Jun  9 11:20:28 UTC 2025 - Angel Yankov <angel.yankov@suse.com>
 
 - Security fix [bsc#1221107, CVE-2024-2236]
   * Add --enable-marvin-workaround to spec to enable workaround
-  * Fix  timing based side-channel in RSA implementation ( Marvin attack ) 
+  * Fix  timing based side-channel in RSA implementation ( Marvin attack )
   * Add libgcrypt-CVE-2024-2236.patch
 
 -------------------------------------------------------------------

libgcrypt.spec

@@ -129,8 +129,8 @@ export CFLAGS="%{optflags} $(getconf LFS_CFLAGS)"
            --enable-pubkey-ciphers="$PUBKEYS" \
            --enable-digests="$DIGESTS" \
            --enable-kdfs="$KDFS" \
+	   --enable-marvin-workaround \
            --enable-noexecstack \
-           --enable-marvin-workaround \
            --disable-static \
 %ifarch %{sparc}
            --disable-asm \